Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File: lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier: mmLYrZTEt3LKh7ihRHW+EOl4qxW2dm8HZSYWUV4GMZ0=
Subject key identifier: 4F:A0:57:2B:D4:3C:89:F3:66:59:47:84:81:1C:41:3C:51:96:71:32
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer: /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial: 019CAEDA46B815AF93420C8C2FA5A22070E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number: 036E
Signing time: Mon 02 Mar 2026 14:01:06 +0000
Manifest this update: Mon 02 Mar 2026 14:01:06 +0000
Manifest next update: Tue 03 Mar 2026 14:01:06 +0000
Files and hashes: 1: cGIbIuyd_-GcZFAPYp_iRhjY8Fs.roa (hash: 4l9uaitU/oM93/Oha9XHLDc9sPtfot6T5F/wqRyQOyk=)
2: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: 1MFyXraHbKX5C97m8RUzM9kkX3J/AS5mWtZImUWC4V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:46:b8:15:af:93:42:0c:8c:2f:a5:a2:20:70:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
Validity
Not Before: Mar 2 14:01:06 2026 GMT
Not After : Mar 3 14:01:06 2026 GMT
Subject: CN=4fa0572bd43c89f366594784811c413c51967132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:df:2f:57:a8:a0:fe:84:d6:d3:d7:6e:20:
0c:e2:10:c9:2d:7d:4a:50:88:77:df:0e:e7:1c:3f:
d5:26:24:ce:02:0a:20:02:f2:0b:d1:22:fa:46:83:
5a:98:7f:b5:2f:0b:dd:56:11:04:0a:eb:a2:92:7f:
e5:c7:6d:e7:6c:fe:fb:3d:c9:d3:3e:ff:46:e5:5c:
72:fe:6c:32:13:84:42:69:1a:6f:17:e4:a2:37:c0:
89:b6:77:3b:d3:c4:fb:a2:ce:ee:fd:c3:07:ba:26:
ee:b0:3c:4d:68:26:c2:7e:57:05:d7:3d:01:bc:bf:
ba:bc:e7:b3:3a:8b:81:af:b6:6d:5c:16:16:3e:06:
e7:92:34:18:cc:eb:c9:82:74:55:95:fa:e5:fa:7d:
50:01:ac:26:93:f5:f7:c8:cc:56:2f:ae:8f:4b:42:
31:67:11:3b:9b:b2:34:fc:ab:cb:b8:25:e1:ba:d9:
82:72:8f:2d:43:a4:84:16:6c:f5:55:15:aa:87:8f:
54:e6:63:08:81:c7:b3:1f:1b:13:68:96:07:2a:da:
61:58:3a:f0:67:9f:e6:a1:63:39:3a:21:c2:3b:41:
19:24:0a:11:dc:e1:bf:18:ad:f1:2c:60:54:6c:67:
6f:70:00:da:4b:cc:b0:6e:5d:0f:2d:80:4e:c1:38:
8a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A0:57:2B:D4:3C:89:F3:66:59:47:84:81:1C:41:3C:51:96:71:32
X509v3 Authority Key Identifier:
keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c6:fb:01:2d:38:53:ae:dc:ca:a9:51:90:b8:eb:2e:1b:64:
88:f3:b8:95:50:0b:29:ef:41:8b:e8:3b:91:e1:81:79:95:a2:
a3:5f:3d:5f:4e:0d:a9:ef:1d:08:27:b1:06:44:e9:72:08:35:
b0:62:61:e2:70:74:5c:91:e8:f0:ba:1c:1c:cd:4f:d4:57:49:
cf:f0:c3:d8:15:a4:9d:61:0a:8e:86:2a:d9:38:18:1b:37:75:
03:c2:d3:a7:36:e6:03:ad:49:2d:2e:c1:5c:23:27:dc:95:15:
f5:3a:96:2f:0d:f4:db:e6:24:07:a1:30:ee:58:bb:62:1a:92:
cd:4a:0f:b5:e4:6b:8c:40:13:3f:32:d2:dc:54:b9:98:82:a3:
26:c0:f9:29:0b:14:10:20:70:66:5d:76:b6:d0:4c:0c:09:74:
4e:b1:db:ae:03:c7:d8:a2:7d:db:4d:17:ef:0a:8d:e1:30:02:
fe:f7:ea:e8:b0:57:ee:69:45:cb:f6:f2:c1:ed:fd:97:b7:0f:
e6:89:bb:8d:72:32:83:06:69:13:84:f8:b6:7b:9a:5b:32:5c:
31:1c:1b:96:45:34:76:59:ed:87:a7:7c:47:43:c7:9b:fc:1a:
03:67:8e:0e:58:80:64:06:b3:1d:1c:f7:de:5a:17:eb:50:c6:
51:9f:33:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:47:44 2026 by rpki-client